$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/56C3DC822B0B11EF97C4A74AC4F9AE02.roa File: 56C3DC822B0B11EF97C4A74AC4F9AE02.roa (raw, json) Hash identifier: BfM+WJCATCxDvSbNYj9etC2USnC2s+RFYfsw7w+QlP8= Subject key identifier: E8:6F:12:60:03:96:DE:29:E5:34:96:49:20:96:C3:0A:A5:63:1E:76 Certificate issuer: /CN=A91E8D27/serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Certificate serial: 3499 Authority key identifier: 6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/56C3DC822B0B11EF97C4A74AC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:31:57 +0000 ROA not before: Fri 16 Jan 2026 16:11:08 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 58779 IP address blocks: 43.243.224.0/22 maxlen: 24 2405:ef00::/32 maxlen: 32 2405:ef00::/32 maxlen: 48 2405:ef00:17::/48 maxlen: 48 2405:ef00:17::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:25:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13465 (0x3499) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D27, serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Validity Not Before: Jan 16 16:11:08 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a44ddd-cb2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d5:96:99:06:65:45:b5:15:2b:bf:e7:fd:9c: 8a:2d:e5:4b:df:a8:46:d7:53:f7:76:c2:f1:96:76: ca:24:b4:eb:d5:0b:cb:0d:61:78:96:b1:c5:e0:25: 34:ec:a5:f1:2c:be:8a:5d:2c:cc:33:40:02:aa:26: 3a:48:53:de:8d:20:49:3b:6d:68:2b:01:35:db:83: 42:3d:04:b1:cb:2b:72:cb:80:05:a8:57:d0:24:2a: 94:bb:fe:96:dc:ca:29:33:33:cc:cb:34:3e:ab:aa: 1e:1a:de:00:9f:c3:b7:d5:d9:ad:46:66:a2:b8:a1: d2:ee:c6:99:b0:9f:7b:89:75:03:b4:f1:b6:cd:5f: 12:25:12:f3:51:2d:eb:4c:6c:c3:4f:8a:e1:dd:69: 78:df:65:60:58:42:ce:7c:6a:da:09:6b:cc:3a:7a: 00:77:b7:07:48:9a:bc:97:9e:55:11:57:9b:cc:31: 45:23:a6:8b:7c:73:76:de:20:ed:b0:e5:45:7a:60: 59:db:66:48:c4:c1:9a:84:cb:47:38:e7:5e:20:56: 66:13:e3:2a:42:5c:0d:08:b2:f0:65:26:90:13:1e: 1a:e6:a6:df:99:e6:bc:62:b6:0d:05:cd:80:fc:d5: eb:ab:32:0f:fd:46:25:c0:3a:d4:52:c4:96:42:8b: b7:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:6F:12:60:03:96:DE:29:E5:34:96:49:20:96:C3:0A:A5:63:1E:76 X509v3 Authority Key Identifier: keyid:6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/56C3DC822B0B11EF97C4A74AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.243.224.0/22 IPv6: 2405:ef00::/32 Signature Algorithm: sha256WithRSAEncryption 81:6d:d9:65:c1:fe:30:7f:bd:75:30:98:b1:4d:b7:e3:9b:57: c0:29:79:08:c0:3a:87:03:17:db:15:5d:e8:28:3b:96:ee:ba: bc:c0:7a:13:cb:37:be:74:99:74:76:7f:92:37:a3:ff:d9:bd: 12:31:3c:b3:36:e0:60:61:4a:98:77:7e:ec:e9:68:26:29:33: 09:e4:58:4d:89:4c:d1:9d:20:41:7c:32:34:6e:65:4a:36:79: 6d:67:e4:81:4e:95:b5:4c:c7:03:15:d5:d6:22:3a:49:73:25: 48:06:ae:b1:dc:39:6b:14:39:0e:d8:5e:25:ef:00:fa:ac:ed: c1:28:2c:17:87:67:90:d6:6d:82:58:a4:13:96:71:c6:90:53: 96:a0:3a:26:ba:88:48:a5:9e:74:00:ee:bd:5a:cd:d5:23:d3: c3:81:51:ef:4c:db:00:8d:a1:28:d1:79:9d:04:f9:01:00:0f: c5:64:2d:35:95:90:66:5e:89:76:1f:67:59:f0:93:c2:c0:26: 1d:53:2e:e3:cd:ed:a8:e3:77:5a:0a:e9:9d:30:2a:71:f2:ab: 8a:65:bb:43:75:0b:55:8c:34:eb:0f:00:77:8c:77:6a:db:66: df:29:18:c4:ff:8d:3b:5f:c2:8c:6d:d4:14:8d:fe:87:6b:b0: 04:ab:67:33 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICNJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjcxMTAvBgNVBAUTKDZCRTQzRTZCMTM5NjQzQ0I0QzE5RTZERjczMjNCNTAz QzQ5MzExREIwHhcNMjYwMTE2MTYxMTA4WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGRkZC1jYjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAstWWmQZlRbUVK7/n/ZyKLeVL36hG11P3dsLxlnbKJLTr1QvLDWF4lrHF4CU0 7KXxLL6KXSzMM0ACqiY6SFPejSBJO21oKwE124NCPQSxyytyy4AFqFfQJCqUu/6W 3MopMzPMyzQ+q6oeGt4An8O31dmtRmaiuKHS7saZsJ97iXUDtPG2zV8SJRLzUS3r TGzDT4rh3Wl432VgWELOfGraCWvMOnoAd7cHSJq8l55VEVebzDFFI6aLfHN23iDt sOVFemBZ22ZIxMGahMtHOOdeIFZmE+MqQlwNCLLwZSaQEx4a5qbfmea8YrYNBc2A /NXrqzIP/UYlwDrUUsSWQou3LQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFOhvEmAD lt4p5TSWSSCWwwqlYx52MB8GA1UdIwQYMBaAFGvkPmsTlkPLTBnm33MjtQPEkxHb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyNy9DMEM1ODA3MDQy RTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4dE1HZWJmY3lPMUE4U1RF ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EtUS1heE9XUTh0TUdlYmZjeU8xQThTVEVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThEMjcvQzBDNTgwNzA0MkU5MTFFMjk3NTBBMzJFMjk3OUJCMjAvNTZDM0RDODIy QjBCMTFFRjk3QzRBNzRBQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCK/PgMA0EAgACMAcDBQAkBe8AMA0GCSqGSIb3DQEBCwUAA4IBAQCB bdllwf4wf711MJixTbfjm1fAKXkIwDqHAxfbFV3oKDuW7rq8wHoTyze+dJl0dn+S N6P/2b0SMTyzNuBgYUqYd37s6WgmKTMJ5FhNiUzRnSBBfDI0bmVKNnltZ+SBTpW1 TMcDFdXWIjpJcyVIBq6x3DlrFDkO2F4l7wD6rO3BKCwXh2eQ1m2CWKQTlnHGkFOW oDomuohIpZ50AO69Ws3VI9PDgVHvTNsAjaEo0XmdBPkBAA/FZC01lZBmXol2H2dZ 8JPCwCYdUy7jze2o43daCumdMCpx8quKZbtDdQtVjDTrDwB3jHdq22bfKRjE/407 X8KMbdQUjf6Ha7AEq2cz -----END CERTIFICATE-----Generated at Mon Mar 2 23:41:20 2026 by rpki-client